Senior IT Compliance Analyst - Remote
Full Time
Calabasas, CA 91302
Posted
Job description
The Sr. IT Compliance Analyst will work in the company’s Information Security and Compliance area and provide expertise in the analysis, implementation, monitoring and reporting of security controls.
Duties and Responsibilities
Duties and Responsibilities
- This role will be a critical and high-impact individual contributor to assist control owners to comply with required controls along with monitoring effectiveness of the controls
- Be well versed, possess deep knowledge and understanding in the current state of Information Security topics. Be able to interpret technical requirements and controls (such as PCI DSS, ITGC, CIS, NIST, ISO, SSAE, HITECH, etc.) for the Harbor Freight networking environment
- Serve as primary point-of-contact to work closely with cross functional teams to identify risk to the business, product, and other areas necessary to identify risks to the business
- Support and monitor remediation efforts of audit findings and validate the closure by reviewing relevant evidence
- Identify process improvements and efficiencies in the existing processes to build robust processes, automate compliance and drive implementation of effective controls
- Interface with IT and other departments to perform the necessary technical review and assess compliance maturity procedures and develop/oversee implementation of improvements or corrective actions
- This role will work collaboratively with members (of IT, Business, Risk Management, Internal and External Auditors, Operations Teams) and perform follow up activities related to remediate gaps and drive remediation efforts with remediation planning, track findings and facilitate remediation of security issues identified through assessments
- Practical working involvement, successful history of facilitating and delivering Security Requirements, performs analysis and interpretation of security and compliance issues
- Develops, enhance, and execute compliance processes and reporting systems
- Ensure existing documentations are current, accurate and are reviewed on an annual basis
- Perform activities to help measure and monitor open items, project timelines and remediations
- Develop, implement, and maintain a continual compliance process for IT General Controls that is flexible and scalable for regulatory requirements and organizational directives
- Facilitate customer and certifier requests and information gathering for audit activities and lead onsite audits
- Successfully project manage and drive testing activities across various teams within the organization
- Assist in the analysis, development and ongoing improvement of a comprehensive, flexible and scalable IT Controls program for regulatory requirements and organizational directives
- Ensure that key processes are documented, reviewed at least annually for accuracy and improvement opportunities, and followed, as appropriate
- Research regulations by reviewing regulatory bulletins and other sources of information
- Helps to guide compliance projects to successful completion
- Contributes in the area of thought leadership for the department
- Provide direction, guidance, and work closely with the Compliance team on tasks timelines, assessing and performing security requirements reviews
- Responsible for quality and on-time execution of periodic audit activities
- Performs users access reviews in accordance with security and compliance requirements
- Perform walkthroughs systems and processes and identify gaps in controls
- Participate in systems and application planning and implementation of Access Control or Security initiatives
- Provide direction, guidance & work with the Compliance team to ensure remediation efforts continue as planned
- After hours work will be required at designated intervals
- Supervises staff – No
- Organizational Scope – Contributor
- Decision Making – Yes
- Travel ‐ Occasional
- Job Location – Corporate Headquarters
- Flex Designation – Anywhere
Requirements
Education (Required)
corporate corporate corporate
- 5+ years education in related field (preferred)
- The successful candidate must be reliable, resourceful and have a “can-do” attitude along with good customer service
- Strong organizational skills, attention to detail, ability to multitask, create status reports, dashboards and KPI metrics and manage simultaneous projects
- Ability to understand the intent of compliance requirements to provide effective and meaningful analysis
- Past training in information security or compliance areas
- Knowledge of Domains, Change Management, SOD, SDLC , Logging, application and database access rights, vulnerabilities
- Solid understanding of PCI DSS, ITGC and other Security Framework requirements
- Experience performing user access reviews
- Process, procedure, and standards development experience
- Good ability to collaborate with other team members
- Excellent written and oral communication and documentation skills
- Strong ability to take initiative to gets tasks and projects completed successfully
- Ability to perform after hours during designated periods
- Strong analytical skills, to analyze security requirements and relate them to appropriate security controls
- 6 to 8 years tech experience/ direct compliance or audit experience
corporate corporate corporate
About Harbor Freight Tools
We're a 45 year-old, $6.5 billion national tool retailer with the energy, enthusiasm, and growth potential of a start-up. We have over 1,300 stores in 48 states across the country and are opening several new locations every week. We offer our customers more than 7,000 tools and accessories, from hand tools and generators to air and power tools, from shop equipment to automotive tools. We provide our customers with the right tool for the right job at the right price, always delivering quality and value.
jackharris.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, jackharris.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, jackharris.com is the ideal place to find your next job.